The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input. (CVE-2016-6261)
Impact
This vulnerability may allow attackers to cause a denial of service (DoS) via 64 bytes of input.